Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
File: 41CBB5B87F7611ECAD50FA4EC4F9AE02.roa (raw, json)
Hash identifier: 8NBaU/JePJQ6/F/3cS0V0StpNvCdrumDQrFWu6BjRDk=
Subject key identifier: C9:5B:0D:EA:3F:E5:03:19:DE:78:E2:6B:09:3D:5F:D2:79:A1:98:B6
Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09
Certificate serial: 0D74
Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
Signing time: Tue 19 May 2026 15:39:39 +0000
ROA not before: Tue 19 May 2026 15:39:39 +0000
ROA not after: Fri 30 Jul 2027 00:00:00 +0000
asID: 134146
IP address blocks: 103.55.144.0/22 maxlen: 24
103.106.56.0/24 maxlen: 24
103.206.231.0/24 maxlen: 24
202.83.124.0/24 maxlen: 24
202.83.125.0/24 maxlen: 24
202.83.126.0/23 maxlen: 23
202.83.126.0/24 maxlen: 24
202.83.127.0/24 maxlen: 24
2400:4fc0::/32 maxlen: 32
2400:4fc0:1::/48 maxlen: 48
2400:4fc0:2::/48 maxlen: 48
2400:4fc0:3::/48 maxlen: 48
2400:4fc0:4::/48 maxlen: 48
2400:4fc0:5::/48 maxlen: 48
2400:4fc0:6::/48 maxlen: 48
2400:4fc0:7::/48 maxlen: 48
2400:4fc0:8::/48 maxlen: 48
2400:4fc0:9::/48 maxlen: 48
2400:4fc0:a::/48 maxlen: 48
2400:4fc0:b::/48 maxlen: 48
2400:4fc0:c::/48 maxlen: 48
2400:4fc0:d::/48 maxlen: 48
2400:4fc0:e::/48 maxlen: 48
2400:4fc0:f::/48 maxlen: 48
2400:4fc0:10::/48 maxlen: 48
2400:4fc0:11::/48 maxlen: 48
2400:4fc0:12::/48 maxlen: 48
2400:4fc0:13::/48 maxlen: 48
2400:4fc0:14::/48 maxlen: 48
2400:4fc0:15::/48 maxlen: 48
2400:4fc0:16::/48 maxlen: 48
2400:4fc0:17::/48 maxlen: 48
2400:4fc0:18::/48 maxlen: 48
2400:4fc0:19::/48 maxlen: 48
2400:4fc0:1a::/48 maxlen: 48
2400:4fc0:1b::/48 maxlen: 48
2400:4fc0:1c::/48 maxlen: 48
2400:4fc0:1d::/48 maxlen: 48
2400:4fc0:1e::/48 maxlen: 48
2400:4fc0:1f::/48 maxlen: 48
2400:4fc0:20::/48 maxlen: 48
2400:4fc0:21::/48 maxlen: 48
2400:4fc0:22::/48 maxlen: 48
2400:4fc0:23::/48 maxlen: 48
2400:4fc0:24::/48 maxlen: 48
2400:4fc0:25::/48 maxlen: 48
2400:4fc0:26::/48 maxlen: 48
2400:4fc0:27::/48 maxlen: 48
2400:4fc0:28::/48 maxlen: 48
2400:4fc0:29::/48 maxlen: 48
2400:4fc0:2a::/48 maxlen: 48
2400:4fc0:2b::/48 maxlen: 48
2400:4fc0:2c::/48 maxlen: 48
2400:4fc0:2d::/48 maxlen: 48
2400:4fc0:2e::/48 maxlen: 48
2400:4fc0:2f::/48 maxlen: 48
2400:4fc0:30::/48 maxlen: 48
2400:4fc0:31::/48 maxlen: 48
2400:4fc0:32::/48 maxlen: 48
2400:4fc0:33::/48 maxlen: 48
2400:4fc0:34::/48 maxlen: 48
2400:4fc0:35::/48 maxlen: 48
2400:4fc0:36::/48 maxlen: 48
2400:4fc0:37::/48 maxlen: 48
2400:4fc0:38::/48 maxlen: 48
2400:4fc0:39::/48 maxlen: 48
2400:4fc0:3a::/48 maxlen: 48
2400:4fc0:3b::/48 maxlen: 48
2400:4fc0:3c::/48 maxlen: 48
2400:4fc0:3d::/48 maxlen: 48
2400:4fc0:3e::/48 maxlen: 48
2400:4fc0:3f::/48 maxlen: 48
2400:4fc0:40::/48 maxlen: 48
2400:4fc0:41::/48 maxlen: 48
2400:4fc0:42::/48 maxlen: 48
2400:4fc0:43::/48 maxlen: 48
2400:4fc0:44::/48 maxlen: 48
2400:4fc0:45::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl
rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 17 Jun 2026 18:03:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3444 (0xd74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9130F9C, serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09
Validity
Not Before: May 19 15:39:39 2026 GMT
Not After : Jul 30 00:00:00 2027 GMT
Subject: CN=6a0c843b-ab7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a1:03:00:24:6d:7e:62:12:53:10:8d:0b:fd:
b3:0d:01:43:e1:05:00:7b:1e:a8:b5:5b:3a:ff:2e:
e4:df:7d:78:10:8e:f6:a1:70:dc:20:da:ae:90:9c:
af:ac:e3:33:a0:9b:dc:2f:fb:4a:1e:7c:0c:32:37:
a0:c7:36:37:3b:79:f4:66:8a:f0:6a:08:47:4f:fe:
b7:88:12:ff:a8:42:61:52:31:d7:4d:fa:93:8d:4d:
73:36:76:e4:41:b8:59:fe:45:45:fa:b7:04:11:9d:
04:a9:f1:f8:0f:33:7c:c2:8c:81:4b:18:b1:c9:62:
11:3c:60:d2:85:f8:13:d7:77:0c:67:5e:2f:d0:8c:
75:96:d0:4c:e9:30:f3:00:52:fc:21:b8:ba:ae:bb:
51:1e:ec:9c:8e:91:dd:44:6b:b0:24:7c:99:cc:ed:
1a:64:47:e6:9a:13:32:2b:7a:77:d8:9b:f6:a0:a8:
ef:45:19:43:3b:6f:52:55:19:b1:a7:3e:5e:0f:64:
ed:64:89:29:99:fc:e4:12:13:16:35:0c:ac:f1:c0:
c5:b9:56:aa:eb:70:42:ba:e5:aa:12:1c:10:e3:ad:
d2:f5:43:22:76:73:1d:cd:d5:45:e1:98:58:79:58:
23:22:d9:78:81:c3:7a:5e:c8:af:45:65:a1:15:f9:
e7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5B:0D:EA:3F:E5:03:19:DE:78:E2:6B:09:3D:5F:D2:79:A1:98:B6
X509v3 Authority Key Identifier:
keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/41CBB5B87F7611ECAD50FA4EC4F9AE02.roa
sbgp-ipAddrBlock: critical
IPv4:
103.55.144.0/22
103.106.56.0/24
103.206.231.0/24
202.83.124.0/22
IPv6:
2400:4fc0::/32
Signature Algorithm: sha256WithRSAEncryption
e2:61:82:38:5c:96:e0:b1:3b:1a:75:fc:13:d7:09:f6:1c:62:
a3:8b:ab:77:1b:2d:32:75:87:65:d5:2e:6e:a8:3d:7c:51:95:
2d:5b:4f:e2:f9:60:6a:7c:ad:9b:fb:af:f1:39:6d:61:e1:80:
0f:3b:3d:91:5a:60:e5:cf:9e:c0:1c:99:9e:c8:21:d3:7d:35:
f1:b4:d9:c7:25:f2:3f:5f:cf:d6:38:b2:47:02:d1:91:80:f0:
42:45:53:fc:a9:88:7c:74:67:32:18:30:70:06:33:e2:3c:7d:
8f:a4:7c:bc:7d:22:cb:c4:ef:0a:5b:cb:5b:7f:87:36:4e:f0:
9e:b6:f0:e4:7c:9c:c7:f0:84:75:0f:11:21:1a:a8:83:33:70:
44:4a:8a:75:13:3c:64:92:d5:76:f4:7a:9b:9c:ce:cd:d9:a6:
13:87:10:3d:dd:cf:40:d3:38:36:aa:e9:3f:48:ce:b0:49:84:
1d:c6:03:42:5c:ed:fe:d7:5f:f0:9b:f5:9e:1e:f0:9f:10:55:
a0:2b:87:64:5d:6d:dc:61:c1:0e:c8:1e:f1:d6:3e:2d:28:98:
9c:aa:18:5f:ba:41:b2:b2:e0:f4:24:17:80:58:37:68:5b:ca:
ee:4b:b8:db:50:3d:56:15:06:5f:60:92:3d:80:3b:fd:7e:98:
31:b1:70:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 19:10:25 2026 by rpki-client